Firewalls revisited...

To: tclug-list@mn-linux.org
Subject: Firewalls revisited...
From: ^chewie <chewie@wookimus.net>
Date: Mon, 24 Apr 2000 01:19:27 -0500
User-Agent: Mutt/1.0i

A quick tip:

	DON'T set the default policy to DENY.
	(e.g. ipchains -P input DENY)

	Append a LAST rule in the input, output, and forward chains that DENY
	and log any missed packets instead...
	(e.g.	ipchains -P input ACCEPT
		ipchains -A input -j ACCEPT	# Accounting rule
		ipchains -A input ...		# Rules
		ipchains -A input -j DENY -l	# Log anything you missed)

	I set up my firewalls the way that is illustrated in the
	IPChains-HOWTO, found at www.linuxdoc.org.  Good resource.  I'm not
	going to write any more about it because the HOWTO does a damned good
	job explaining things.

Have fun.
-- 
^chewie

PGP signature

Follow-Ups:
- Re: [TCLUG:16582] Firewalls revisited...
  - From: Scott Dier - dieman <dieman@ringworld.org>
- Re: [TCLUG:16582] Firewalls revisited...
  - From: "Thomas T. Veldhouse" <veldy@visi.com>

Prev by Date: Re: [TCLUG:16577] A+ Certification
Next by Date: AMD. It's funny. Laugh.
Prev by thread: anyone use vnc?
Next by thread: Re: [TCLUG:16582] Firewalls revisited...
Index(es):
- Date
- Thread